[OpenIndiana-discuss] Heads up OpenSSH config change
Stephan Althaus
Stephan.Althaus at Duedinghausen.eu
Wed Oct 16 09:35:20 UTC 2024
On 10/15/24 10:29, Till Wegmüller wrote:
> Hello everyone.
>
> We have recently packaged OpenSSH 9.9 and have found that this also
> requires us to distribute a configuration change. If you have not
> edited your SSH Config this will not effect you. If you have edited
> your sshd_config you will need to run the following sed script before
> you run pkg update.
>
> sed -i "s/ListenAddress ::/#ListenAddress ::/g" /etc/ssh/sshd_config
>
> Alternatively make sure that all ListenAddress directives are either
> Uncommented or commented out.
>
> The reason for this config change is, that we had a differing
> behaviour on our OS for how ListenAdress works compared to what you
> find on the internet. We do not know what introduced this behaviour in
> the past but it seems to have been fixed upstream. We thus make sure
> OpenSSH behaves as people expect it to when changing the config.
>
> Greetings
> Till
>
> _______________________________________________
> openindiana-discuss mailing list
> openindiana-discuss at openindiana.org
> https://openindiana.org/mailman/listinfo/openindiana-discuss
Hi!
There is more to check with the config, just in case someone stumbles...
[ Oct 16 11:29:35 Executing start method ("/lib/svc/method/sshd start"). ]
/etc/ssh/sshd_config line 85: Deprecated option ServerKeyBits
/etc/ssh/sshd_config line 90: Deprecated option KeyRegenerationInterval
/etc/ssh/sshd_config: line 103: Bad configuration option: MaxAuthTriesLog
/etc/ssh/sshd_config line 132: Deprecated option RhostsAuthentication
/etc/ssh/sshd_config line 138: Deprecated option RhostsRSAAuthentication
/etc/ssh/sshd_config line 145: Deprecated option RSAAuthentication
/etc/ssh/sshd_config: terminating, 1 bad configuration options
after commenting them out with a # in front, the ssh service is running.
Regards,
Stephan
More information about the openindiana-discuss
mailing list